QACTL tool use guide
qa-ctl is a tool that allows you to run tests locally and get the results without worrying about deployments,
provisioning and dependencies.
To achieve this, this tool does the following:
- Deploy the necessary environment to run the test/s.
- Install Wazuh and the wazuh-qa framework on the deployed machines. In short, ready for running tests.
- Execute the test/s and return the results to the user.
The next image shows a flow diagram of how the tool works:
- The
infrastructuremodule is in charge of creating the needed VMs or containers. - The
provisioningmodule is in charge of installing Wazuh and the QA framework. - The
runtest module is responsible for launching the tests and collect the results.
First, you have to install the qa-ctl tool.
Check if it is installed with qa-ctl -h, you will see the help menu.
This tool has the following parameters:
-
-c, --config <file_path>: Specifies the custom configuration file to be used inqa-ctl -
-d, --dry-run: Mode to simulate and create the configuration file from one or a set of tests. -
-h, --help: Showqa-ctlhelp menu. -
-p, --persistent: If specified, the environment will not be destroyed after finishing. -
-r, --run <test_name_1> <test_name_2> ...: Set automatic mode. Launches the tests and returns the results -
-v, --version <version>: Specify the version of wazuh to use. If not set, the latest released version will be used.
-
-r,--runcannot be launched with the-c,--configparameter. They represent independent modes. -
-d,--dry-runonly can be launch withr,--runmode (incompatible with-c,--config). -
-v,--versionparameter has to be inx.y.zformat. For example4.2.1.
Quick and simple way to run a test and obtain the results using default parameters. In this mode the documentation of
each test is parsed and the necessary environment is built, provisioning it with the specific Wazuh version
(with the -v or --version parameter), or else using the latest released version of Wazuh and using the equivalent
version for wazuh-qa framework and testing.
To use this mode, we have to specify the parameter -r, --run.
qa-ctl -r <test_name_1> <test_name_2> ...For example:
$ qa-ctl -r test_general_settings_enabled
2021-09-08 16:35:31,651 - INFO - Starting 1 instances deployment
2021-09-08 16:38:01,214 - INFO - The instances deployment has finished sucessfully
2021-09-08 16:38:01,216 - INFO - Checking hosts SSH connection
2021-09-08 16:38:07,584 - INFO - Hosts connection OK. The instances are accessible via ssh
2021-09-08 16:38:07,584 - INFO - Provisioning 1 instances
2021-09-08 16:39:06,467 - INFO - Waiting 60 seconds before performing the healthcheck in 10.150.50.2 host
2021-09-08 16:41:10,351 - INFO - The instances have been provisioned sucessfully
2021-09-08 16:41:10,354 - INFO - Launching 1 tests
2021-09-08 16:41:10,355 - INFO - Waiting for tests to finish
2021-09-08 16:41:11,277 - INFO - Running /tmp/wazuh-qa/tests/integration/test_vulnerability_detector/test_general_settings/test_general_settings_enabled.py test on ['10.150.50.2'] hosts
2021-09-08 16:41:17,795 - INFO -
============================= test session starts ==============================
platform linux -- Python 3.8.10, pytest-6.2.4, py-1.10.0, pluggy-0.13.1
rootdir: /tmp/wazuh-qa/tests/integration, configfile: pytest.ini
plugins: html-2.0.1, testinfra-6.0.0, metadata-1.11.0, testinfra-6.4.0
collected 4 items
../../tmp/wazuh-qa/tests/integration/test_vulnerability_detector/test_general_settings/test_general_settings_enabled.py . [ 25%]
ss. [100%]
- generated html file: file:///tmp/wazuh-qa/test/integration/reports/test_report-2021-09-08 16:41:11.277135.html -
========================= 2 passed, 2 skipped in 1.90s =========================
2021-09-08 16:41:17,795 - INFO - The test run is finished
2021-09-08 16:41:17,795 - INFO - Destroying 1 instances
2021-09-08 16:41:23,143 - INFO - The instances have been destroyed sucessfully
Mode in which we will specify the execution flow of qa-ctl according to a custom configuration file.
In this configuration file we can specify information about deployment, provisioning and test executions.
Also, it can be used to launch independent modules without making use of the complete flow, for example, if we already have a previously deployed and provisioned environment, we can choose only to launch the tests, or choose to deploy only one environment...
To use this mode, we have to specify the parameter -c, --config.
qa-ctl -c <configuration_file_path>
Hybrid mode that mixes automatic and manual. The objective is to automatically generate the configuration file from the information of the tests, so that later the user can edit and use it.
Useful when you want to change some small aspect of the default configuration. First the configuration file is generated with the information of the tests, it is modified and then it is launched in manual mode
To use this mode, we have to specify the parameter -d, --dry-run along with -r, --run.
qa-ctl -d <test_name_1> <test_name_2> ...
For example:
$ qa-ctl -d -r test_general_settings_enabled
2021-09-08 16:53:40,179 - INFO - Run as dry-run mode. Configuration file saved in /tmp/config_1631112820.17649.yaml- Launch a single test
qa-ctl -r <test_name>- Launch multiple tests (In parallel using different environments)
qa-ctl -r <test_name_1> <test_name_2> ...- Launch a test with a specific version of Wazuh
qa-ctl -r <test_name> -v <wazuh_version>- Launch tests with a custom
qa-ctlconfiguration (tests are include in the configuration file)
qa-ctl -c <config_file_path>- Generate tests configuration, update it and run it.
qa-ctl -d -r <test_name>
<Update configuration file generated in showed path>
qa-ctl -c <config_file_path>QACTL consists of several different and independent modules. We can interact with these modules through the
configuration file written in YAML format.
This file consists of 4 main sections:
-
deployment: Section to specify the environment deployment information. It can be with vagrant or docker. -
provision: Section for specifying provisioning information for an environment. -
tests: Section to indicate the set of tests to be run in the environment. -
config: Section to specify customqa-ctlconfiguration such as logging.
All of these sections have different configurable fields, some required, some optional, and declared by default if not given. In the next points of this guide, every field will be explained so the user can understand it better.
deployment:
host1:
provider:
vagrant:
enabled: True/False (Required)
vagrantfile_path: String (Required)
vagrant_box: String (Required)
vm_memory: Number(int) (Required)
vm_cpu: Number(int) (Required)
vm_name: String (Required)
vm_system: String (Required)
label: String (Required)
vm_ip: IP address (Required)
host2:
provider:
docker:
enabled: True/False (Required)
dockerfile_path: String (Required)
name: String (Required)
ip: String (Optional) Default: None
remove: True/False (Optional) default: False
ports: Dict (optional) default: Empty
detach: True/False (Optional) default: True
stdout: True/False (Optional) default: False
stderr: True/False (Optional) default: FalseVagrant deployment
-
enabled: If False, the VM won’t be created. -
vagrantfile_path: Path where the vagrantfile will be created. -
vagrant_box: Path to the vagrant box file, link, or box specifying the box that will be used. -
vm_memory: Memory assigned to the VM. -
vm_cpu: Number of CPUs assigned to the VM. -
vm_system: VM operative system. -
Label: Assign a label to the VM. -
vm_ip: assigned IP for the VM
Docker deployment
-
enabled: If False, the VM won’t be created. -
dockerfile_path: Path to an existing dockerfile. -
name: Name assigned to the container. -
ip: Assign a static IP to the container. To do this, we need to create a docker network based on the specified network (to not create as many networks as containers specified in the dockerfile, only one network is allowed). The mask of the network is/24. If this option is not specified, the container won't have a static IP -
remove: Remove the container. Defaults to False. -
Ports: Ports to bind to the container. This field is a python dictionary where the keys are the ports to bind inside the container in the form port/protocol, and the values are integers corresponding to the ports we want to open in the host. -
detach: Run the container in the background. Defaults to True. -
stdout: Return logs from STDOUT when detach=False. -
stderr: Return logs from STDERR when detach=False.
provision:
hosts:
host1:
host_info:
connection_method: String (Required)
host: String (Required)
user: String (Required)
password: String (Required)
connection_port: Integer (Required)
ansible_python_interpreter: String (Required)
wazuh_deployment:
type: String(Required)
target: String (Required)
manager_ip: String (conditional requirement)
wazuh_branch: String (conditional requirement)
s3_package_url: String (conditional requirement)
local_package_path: String (conditional requirement)
system: String (conditional requirement)
version: String (conditional requirement)
revision: String (conditional requirement)
repository: String (conditional requirement)
installation_files_path: String (Required)
wazuh_install_path: String
healt_check: Boolean
qa_framework:
wazuh_qa_branch: String (Required)
qa_workdir: String (Required)Host info section
-
connection_method: This field defines the connection method selected. -
host: String with the IP or DNS of the host. -
user: String with the existing username in the host. -
password: String with the password of the user. -
connection_port: The port number that will be used to establish the connection. -
ansible_python_interpreter: String with the Python path.
Wazuh deployment section
-
type: Type of the installation method. This value can be either 'sources' or 'package'. -
target: Target of the Wazuh installation. This field can take only two different values:-
manager: In case we want to install wazuh manager. -
agent: In case we want to install wazuh agent.
-
-
manager_ip: It contains the manager IP to get connected. This field will be required only when the target specified is 'agent'. -
wazuh_branch: It contains the branch containing the desired wazuh installation files. This field is only required whentypehas the value 'sources'. -
s3_package_url: It contains the url of a wazuh s3 package to download. This parameter is only required under two conditions:-
typefield has to havepackageselected as the parameter. - The field
local_package_pathdoesn't have to be defined. - None of the fields
system,version,revision, andrepositoryare given.
-
-
local_package_path: It contains the local path where the wazuh package is located. As with s3_package_url, this field will also be required under two conditions:- The field
typehas to havepackageselected as the parameter. - The field
s3_package_urldoesn't have to be defined. - None of the fields
system,version,revision, andrepositoryare given.
- The field
-
system: System type of the machine where Wazuh is going to be installed. This parameter is only required under two conditions:- The field
typehas to havepackageselected as the parameter. - None of the fields
s3_package_urlandlocal_package_pathare given.
- The field
-
version: Version of the Wazuh package that is going to be installed. This parameter is only required under two conditions:- The field
typehas to havepackageselected as the parameter. - None of the fields
s3_package_urlandlocal_package_pathare given.
- The field
-
revision: Revision of the Wazuh package that is going to be installed. This parameter is only required under two conditions:- The field
typehas to havepackageselected as the parameter. - None of the fields
s3_package_urlandlocal_package_pathare given.
- The field
-
repository: S3 Repository where the Wazuh package is located. This parameter is only required under two conditions:- The field
typehas to havepackageselected as the parameter. - None of the fields
s3_package_urlandlocal_package_pathare given.
- The field
-
installation_files_path: It contains the path where to place Wazuh repo. -
wazuh_install_path: It contains the path where wazuh will be installed. This field is not required and by default the path defined will be/var/ossec. -
healt_check: Boolean that determinates if health check is performed.
Test launch module
tests:
host1:
host_info:
connection_method: String (Required)
host: String (Required)
user: String (Required)
password: String (Required)
ssh_private_key_file_path: String
connection_port: Integer (Required)
ansible_python_interpreter: String (Required)
test:
hosts: String
type: String
path: (required)
test_files_path: String (required)
run_tests_dir_path: String (required)
test_results_path: String (required)
parameters:
tier: String
stop_after_first_failure: Boolean
keyword_expression: Srting
traceback: String
dry_run: Boolean Default value: False
custom_args: String
verbose_level: Boolean
log_level: String
markers: ListHost info section
-
connection_method: This field defines the connection method selected. -
host: String with the IP or DNS of the host. -
user: String with the existing username in the host. -
password: String with the password of the user. -
connection_port: The port number that will be used to establish the connection. -
ansible_python_interpreter: String with the Python path. -
ssh_private_key_file_path: This field is optional and contains the path of an ssh private key in case the user wants to log into the host with a different method.
Test section
-
hosts: A list of desired hosts where the test must be launched. Every host in this list is represented by the same ip address used in every particular host under the provision module. If this field is empty, then the test will be launched in every host defined in ansible inventory. -
type: Tool used to run the tests. As for now, pytest is the only tool available in this field. -
path: This subsection field holds three different paths, all of them required:-
test_files_path: The path pointing to the folder containing the desired tests to be launched. -
run_tests_dir_path: The path to the folder from where we want to run the tests (can be different from test_files_path) -
test_results_path: The path to the folder in the local machine where the test reports will be stored.
-
Parameters section
-
tiers: a list containing all the tiers to launch. -
stop_after_first_failure: -x option, stop the execution after the first failure. Default value set to false. -
keyword_expression: it works along test_files_path, if this value is empty then run all the tests in test_file_path. If it’s not empty, then there must be a valid regex to select specific tests in that folder. By default is set to None. -
traceback: modify the traceback printing of python [auto, long, short, native, line, no]. Default value set to auto. -
dry_run: collects all the tests but doesn’t run them. By default is set to false. -
custom_args: a list containing a string of space-separated values, corresponding to key-value pair. -
verbose_level: add the option --verbose. By default is set to false. -
log_level: sets the log level for the tests. By default is set to None. -
markers: allow adding markers to pytest command. If the test has a decorator with the same marker, then it will run. The format is a list of strings with each one desired marked.
config:
vagrant_output: Boolean
ansible_output: Boolean
logging:
enable: Boolean
level: String
file: String-
vagrant_output: Field that defines if the vagrant's outputs are going to be replaced by customized outputs(true) or if they remain with the default outputs (false) -
ansible_output: Field that defines if the ansible's outputs are going to be replaced by customized outputs(true) or if they remain with the default outputs (false) -
logging:-
enable: This field is used for enabling(true) or disabling(false) the logging outputs option -
level: This field defines the logging level for the outputs. Four options are available:DEBUG, INFO, WARNING, ERROR, CRITICAL -
file: This field defines a path for a file where the outputs will be logged as well
-
Note: It is recommended to set
vagrant_outputandansible_outputtoFalse, andlogging/enabletoTrue
(default values) in order to get a clean detail and report on the status of the process.
-
Create a Docker instance from the ubuntu dockerfile placed on the specified path and with the name
test1.yaml configuration
deployment: host1: provider: docker: enabled: True dockerfile_path: /home/username/wazuh-qa/deps/wazuh_testing/wazuh_testing/qa_ctl/deployment/dockerfiles/ubuntu name: test1
-
Create a vagrant provider with the deployment module with 1024MB memory given, a single cpu assigned, and with the box imported as
qactl/ubuntu_20_04.yaml configuration
deployment: host2: provider: vagrant: enabled: True vagrantfile_path: /home/username/test2 vagrant_box: qactl/ubuntu_20_04 vm_memory: 1024 vm_cpu: 1 vm_name: test2 vm_system: ubuntu label: test2 vm_ip: 172.18.1.15
-
Provisioning the vagrant machine created before with a wazuh manager using a S3 URL as a provider of the package and selecting the wazuh qa framework from the
masterbranchyaml configuration
provision: hosts: host2: host_info: connection_method: ssh host: 172.18.1.15 user: vagrant password: vagrant connection_port: 22 ansible_python_interpreter: /usr/bin/python wazuh_deployment: type: package target: manager s3_package_url: https://packages.wazuh.com/4.x/apt/pool/main/w/wazuh-manager/wazuh-manager_4.1.5-1_amd64.deb installation_files_path: /tmp qa_framework: wazuh_qa_branch: master qa_workdir: /tmp
-
Run the
general settings enabledtest in the already provisioned machine.yaml configuration
tests: host2: host_info: connection_method: ssh host: 172.18.1.15 user: vagrant password: vagrant connection_port: 22 ansible_python_interpreter: /usr/bin/python3 test: hosts: 172.18.1.15 type: pytest path: test_files_path: /tmp/wazuh-qa/tests/integration/test_vulnerability_detector/test_general_settings/test_general_settings_enabled.py run_tests_dir_path: /tmp/wazuh-qa/tests/integration test_results_path: /tmp/test-results
-
This is an example of a yaml configuration with all the modules given. In this case, this configuration will create an
Ubuntuvagrant instance with the vagrantfile located in the/tmpfolder, with two assigned CPUs and the ip172.16.1.10. For the provisioning module, it will install a wazuh-agent from a local package connected to the manager created before through themanager_ipvalue, and will run the general settings enabled test on the manager created before. Lastly, the config section will configure custom outputs.yaml configuration
deployment: host1: provider: vagrant: enabled: True vagrantfile_path: '/tmp' vagrant_box: 'qactl/ubuntu_20_04' vm_memory: 1024 vm_cpu: 2 vm_name: 'ubu20' vm_system: 'Linux' label: 'qactl' vm_ip: '172.16.1.10' provision: hosts: host1: host_info: connection_method: 'ssh' host: '172.16.1.10' user: 'vagrant' password: 'vagrant' connection_port: '22' ansible_python_interpreter: '/usr/bin/python3' wazuh_deployment: type: 'package' target: 'agent' manager_ip: 172.18.1.15 local_package_path: '/home/username/work/packages/wazuh-agent4.2.0-1_amd64.deb' installation_files_path: '/tmp' health_check: False qa_framework: wazuh_qa_branch: 'master' qa_workdir: '/tmp' tests: host1: host_info: connection_method: ssh host: 172.16.1.15 user: vagrant password: vagrant connection_port: 22 ansible_python_interpreter: /usr/bin/python3 test: hosts: '172.16.1.15' type: pytest path: test_files_path: '/tmp/wazuh-qa/tests/integration/test_vulnerability_detector/test_general_settings/test_general_settings_enabled.py' run_tests_dir_path: '/tmp/wazuh-qa/tests/integration/test_vulnerability_detector/test_general_settings' test_results_path: '/home/username/Documents/test' config: vagrant_output: True ansible_output: True logging: enable: True level: INFO